Vulnerability Description
Soldat game server 1.4.2 and earlier, and dedicated server 2.6.2 and earlier, allows remote attackers to cause a denial of service (client lockout) via a series of UDP join packets from a spoofed IP address, which triggers temporary blacklisting of this IP address.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Michal Marcinkowski | Soldat Dedicated Server | <= 2.6.2 |
| Michal Marcinkowski | Soldat Game Server | <= 1.4.2 |
References
- http://aluigi.altervista.org/adv/soldatdos-adv.txt
- http://aluigi.org/poc/soldatdos.zip
- http://www.securityfocus.com/archive/1/477624/100/0/threaded
- http://www.securityfocus.com/bid/25426
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36232
- http://aluigi.altervista.org/adv/soldatdos-adv.txt
- http://aluigi.org/poc/soldatdos.zip
- http://www.securityfocus.com/archive/1/477624/100/0/threaded
- http://www.securityfocus.com/bid/25426
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36232
FAQ
What is CVE-2007-4532?
CVE-2007-4532 is a vulnerability with a CVSS score of 7.8 (HIGH). Soldat game server 1.4.2 and earlier, and dedicated server 2.6.2 and earlier, allows remote attackers to cause a denial of service (client lockout) via a series of UDP join packets from a spoofed IP a...
How severe is CVE-2007-4532?
CVE-2007-4532 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-4532?
Check the references section above for vendor advisories and patch information. Affected products include: Michal Marcinkowski Soldat Dedicated Server, Michal Marcinkowski Soldat Game Server.